This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft File: OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft (raw, json) Hash identifier: Om8COerCKzFTE5Vmoy+76UlfPSZGOG62ZMyBvPwtvHc= Subject key identifier: 10:62:D7:34:4F:40:62:5C:D0:16:A7:5D:BB:0F:90:C9:50:DA:6A:50 Authority key identifier: 38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7 Certificate issuer: /CN=38728e9bd37399df9ffae587bd06884b350a65b7 Certificate serial: 019B42803BC57EE97D9043A3ECB5B6E41087 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft Manifest number: 1675 Signing time: Sun 21 Dec 2025 20:00:58 +0000 Manifest this update: Sun 21 Dec 2025 20:00:58 +0000 Manifest next update: Mon 22 Dec 2025 20:00:58 +0000 Files and hashes: 1: OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl (hash: q3pjmC8mBGTelpZivKrVXbCm+DnoJkTrYdxhBYx6knM=) 2: twJfM1b3K1XophieDfrOK9Yb-bY.roa (hash: MXmmwrQwlazvGbzqXnWAVBTx7ErXJeD/39Xn13fKyq4=) 3: yDG1vLQ-KGVU7rKzL_YKjYA7asI.roa (hash: nobKKBS8kgxDPf0JFjAg1XT1LQOMq5xVuTfEuqxhhFw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:80:3b:c5:7e:e9:7d:90:43:a3:ec:b5:b6:e4:10:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38728e9bd37399df9ffae587bd06884b350a65b7 Validity Not Before: Dec 21 20:00:58 2025 GMT Not After : Dec 22 20:00:58 2025 GMT Subject: CN=1062d7344f40625cd016a75dbb0f90c950da6a50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:dc:bf:96:3c:84:c6:5e:6b:44:a6:0d:be:66: 13:1b:ac:82:77:c2:d4:23:75:6a:e3:1e:e2:ba:43: 07:8d:58:a6:dc:e8:d9:f4:29:3f:7c:d9:17:27:e3: da:fb:24:90:96:fc:72:71:42:bb:42:fe:be:21:fe: d2:f9:ed:9c:83:1c:d3:39:ab:e8:97:61:68:a3:89: bc:d0:2c:1d:4f:51:79:4a:1e:e5:5d:b8:42:06:53: cc:1a:2b:8a:11:d1:20:ad:cd:83:89:ca:4e:3a:49: b9:07:c5:37:03:9a:bb:b8:e2:e0:b7:8b:eb:ac:f3: e2:f2:9e:07:90:4a:96:d4:b6:1c:11:7f:c8:50:f5: 4d:85:08:fd:46:28:ea:a4:4f:f9:e8:c9:4f:05:c1: e8:06:a2:3f:e5:92:d8:35:da:c0:a5:2a:79:9f:98: 3a:6a:23:c5:cc:e4:8e:42:32:89:27:a5:bc:7c:66: c8:43:c0:cd:5c:48:e8:e8:fe:e5:04:b5:f8:b5:c2: 4b:b0:71:be:d6:f7:d0:55:77:c1:27:aa:7d:4f:54: b4:2f:5f:b4:25:f9:0f:7d:5a:2c:d5:6f:fc:92:b8: 45:46:11:36:49:7f:9b:68:dd:1f:5a:a8:e1:16:8e: c9:9b:8f:94:a5:8e:50:07:95:ee:20:51:72:e4:41: 46:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:62:D7:34:4F:40:62:5C:D0:16:A7:5D:BB:0F:90:C9:50:DA:6A:50 X509v3 Authority Key Identifier: keyid:38:72:8E:9B:D3:73:99:DF:9F:FA:E5:87:BD:06:88:4B:35:0A:65:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OHKOm9Nzmd-f-uWHvQaISzUKZbc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/be3e25-881c-4aec-a932-f8cfa33d684e/1/OHKOm9Nzmd-f-uWHvQaISzUKZbc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:1c:5f:25:0d:25:d6:00:58:84:e7:1a:51:92:6f:c4:82:f2: c2:56:2d:16:f8:18:aa:dd:bc:83:1e:29:2f:18:9e:e8:b9:b9: b4:10:1b:a2:34:a2:e4:5f:ee:fd:59:4c:a0:d4:bf:ab:16:1e: 56:a6:3b:4e:3a:b2:2b:72:81:d0:e5:63:29:43:c5:95:61:86: 3b:f8:f9:93:0b:78:13:5c:ff:b2:8d:85:66:1e:03:8e:53:6a: 46:3e:1a:e1:b2:af:63:2e:00:e7:6b:e3:8c:cf:c9:35:67:42: 59:4b:65:1c:99:45:76:b2:5d:53:12:2b:ff:37:7a:a5:a5:42: fd:8b:84:9c:4a:79:63:99:fe:db:11:0b:16:4a:84:91:0f:b3: 11:50:09:69:43:48:77:31:92:bf:f5:68:2f:8f:2b:1a:53:99: e8:ea:92:85:f5:d1:2a:2a:ad:3d:1c:1b:40:cc:c7:c0:0d:83: 90:38:7a:8a:4b:5e:41:87:d3:13:41:9f:0a:bf:90:e3:98:45: a7:83:84:f2:97:c7:9b:39:ad:0f:0d:0f:57:70:16:03:72:0e: 71:55:8d:0e:f7:36:8c:65:dd:9d:24:70:69:fd:3c:10:5d:b2: 6f:db:cd:38:f9:1c:68:4f:fe:66:9f:1c:56:17:10:08:ce:e7: ea:19:f1:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCgDvFful9kEOj7LW25BCHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4NzI4ZTliZDM3Mzk5ZGY5ZmZhZTU4N2JkMDY4ODRiMzUw YTY1YjcwHhcNMjUxMjIxMjAwMDU4WhcNMjUxMjIyMjAwMDU4WjAzMTEwLwYDVQQD EygxMDYyZDczNDRmNDA2MjVjZDAxNmE3NWRiYjBmOTBjOTUwZGE2YTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAudy/ljyExl5rRKYNvmYTG6yCd8LU I3Vq4x7iukMHjVim3OjZ9Ck/fNkXJ+Pa+ySQlvxycUK7Qv6+If7S+e2cgxzTOavo l2Foo4m80CwdT1F5Sh7lXbhCBlPMGiuKEdEgrc2DicpOOkm5B8U3A5q7uOLgt4vr rPPi8p4HkEqW1LYcEX/IUPVNhQj9RijqpE/56MlPBcHoBqI/5ZLYNdrApSp5n5g6 aiPFzOSOQjKJJ6W8fGbIQ8DNXEjo6P7lBLX4tcJLsHG+1vfQVXfBJ6p9T1S0L1+0 JfkPfVos1W/8krhFRhE2SX+baN0fWqjhFo7Jm4+UpY5QB5XuIFFy5EFGhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBBi1zRPQGJc0BanXbsPkMlQ2mpQMB8GA1UdIwQY MBaAFDhyjpvTc5nfn/rlh70GiEs1CmW3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9iZTNlMjUtODgxYy00YWVjLWE5MzIt ZjhjZmEzM2Q2ODRlLzEvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9iZTNlMjUtODgxYy00YWVjLWE5MzItZjhjZmEzM2Q2ODRl LzEvT0hLT205TnptZC1mLXVXSHZRYUlTelVLWmJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALBxfJQ0l 1gBYhOcaUZJvxILywlYtFvgYqt28gx4pLxie6Lm5tBAbojSi5F/u/VlMoNS/qxYe VqY7TjqyK3KB0OVjKUPFlWGGO/j5kwt4E1z/so2FZh4DjlNqRj4a4bKvYy4A52vj jM/JNWdCWUtlHJlFdrJdUxIr/zd6paVC/YuEnEp5Y5n+2xELFkqEkQ+zEVAJaUNI dzGSv/VoL48rGlOZ6OqShfXRKiqtPRwbQMzHwA2DkDh6ikteQYfTE0GfCr+Q45hF p4OE8pfHmzmtDw0PV3AWA3IOcVWNDvc2jGXdnSRwaf08EF2yb9vNOPkcaE/+Zp8c VhcQCM7n6hnx7Q== -----END CERTIFICATE-----Generated at Sun Dec 21 22:28:23 2025 by rpki-client